HTTP/1.1 302 Found
Date: Fri, 25 Sep 2020 16:01:03 GMT
Server: Apache
Location: http://www.id-direct.com
Content-Length: 208
Content-Type: text/html; charset=iso-8859-1
HTTP/1.1 301 301
Date: Fri, 25 Sep 2020 16:01:03 GMT
Server: Apache
Content-Security-Policy: default-src 'none' ; base-uri 'none' ; form-action 'self' 'unsafe-inline' https://secure.ogone.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com blob: *.googleapis.com *.abtasty.com https://cdn.segment.com/analytics.js/ https://cdn.mxpnl.com/libs/ https://*.mixpanel.com https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com http://script.crazyegg.com/ https://use.typekit.net https://cl.avis-verifies.com/ https://sdk.privacy-center.org/ https://www.youtube.com https://s.ytimg.com https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://chimpstatic.com https://connect.facebook.net https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://tagmanager.google.com https://chimpstatic.com https://connect.facebook.net; child-src https://vars.hotjar.com 'self' blob: ; connect-src 'self' https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com *.abtasty.com *.flagship.io https://api.segment.io https://*.mixpanel.com https://www.google-analytics.com https://awsapis3.netreviews.eu/ https://api.privacy-center.org/ ; font-src 'self' https://script.hotjar.com blob: data: *.googleapis.com *.gstatic.com *.abtasty.com https://fonts.gstatic.com https://use.typekit.net https://cl.avis-verifies.com/ ; frame-src 'self' https://vars.hotjar.com https://cl.avis-verifies.com https://www.youtube.com https://www.google.com ; img-src 'self' https://script.hotjar.com blob: data: *.abtasty.com *.amazonaws.com *.cloudfront.net https://www.googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://cl.avis-verifies.com https://sdk.privacy-center.org/ https://dev.visualwebsiteoptimizer.com https://*.facebook.com/tr/ https://stats.g.doubleclick.net https://www.google.de/ads/ https://*.gstatic.com https://dev.visualwebsiteoptimizer.com https://*.google.com https://*.facebook.com/tr/ https://ssl.google-analytics.com; style-src 'self' 'unsafe-inline' *.gstatic.com *.abtasty.com *.googleapis.com https://tagmanager.google.com https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net https://tagmanager.google.com; media-src 'self' ; object-src 'self' ; manifest-src 'self' ; frame-ancestors 'self' ; block-all-mixed-content;
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://secure.ogone.com
Strict-Transport-Security: max-age=3600; includeSubDomains
Expect-CT: enforce, max-age=86400
Set-Cookie: JSESSIONID=B98387F66BCB42CC3B79BCB4CEBC4343.app2; Path=/; HttpOnly
Location: https://www.id-direct.com/
Transfer-Encoding: chunked
HTTP/1.1 302 302
Date: Fri, 25 Sep 2020 16:01:03 GMT
Server: Apache
Content-Security-Policy: default-src 'none' ; base-uri 'none' ; form-action 'self' 'unsafe-inline' https://secure.ogone.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com blob: *.googleapis.com *.abtasty.com https://cdn.segment.com/analytics.js/ https://cdn.mxpnl.com/libs/ https://*.mixpanel.com https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com http://script.crazyegg.com/ https://use.typekit.net https://cl.avis-verifies.com/ https://sdk.privacy-center.org/ https://www.youtube.com https://s.ytimg.com https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://chimpstatic.com https://connect.facebook.net https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://tagmanager.google.com https://chimpstatic.com https://connect.facebook.net; child-src https://vars.hotjar.com 'self' blob: ; connect-src 'self' https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com *.abtasty.com *.flagship.io https://api.segment.io https://*.mixpanel.com https://www.google-analytics.com https://awsapis3.netreviews.eu/ https://api.privacy-center.org/ ; font-src 'self' https://script.hotjar.com blob: data: *.googleapis.com *.gstatic.com *.abtasty.com https://fonts.gstatic.com https://use.typekit.net https://cl.avis-verifies.com/ ; frame-src 'self' https://vars.hotjar.com https://cl.avis-verifies.com https://www.youtube.com https://www.google.com ; img-src 'self' https://script.hotjar.com blob: data: *.abtasty.com *.amazonaws.com *.cloudfront.net https://www.googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://cl.avis-verifies.com https://sdk.privacy-center.org/ https://dev.visualwebsiteoptimizer.com https://*.facebook.com/tr/ https://stats.g.doubleclick.net https://www.google.de/ads/ https://*.gstatic.com https://dev.visualwebsiteoptimizer.com https://*.google.com https://*.facebook.com/tr/ https://ssl.google-analytics.com; style-src 'self' 'unsafe-inline' *.gstatic.com *.abtasty.com *.googleapis.com https://tagmanager.google.com https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net https://tagmanager.google.com; media-src 'self' ; object-src 'self' ; manifest-src 'self' ; frame-ancestors 'self' ; block-all-mixed-content;
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://secure.ogone.com
Strict-Transport-Security: max-age=3600; includeSubDomains
Expect-CT: enforce, max-age=86400
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store
Location: ./us/de/index.html
Content-Length: 0
HTTP/1.1 301 301
Date: Fri, 25 Sep 2020 16:01:04 GMT
Server: Apache
Content-Security-Policy: default-src 'none' ; base-uri 'none' ; form-action 'self' 'unsafe-inline' https://secure.ogone.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com blob: *.googleapis.com *.abtasty.com https://cdn.segment.com/analytics.js/ https://cdn.mxpnl.com/libs/ https://*.mixpanel.com https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com http://script.crazyegg.com/ https://use.typekit.net https://cl.avis-verifies.com/ https://sdk.privacy-center.org/ https://www.youtube.com https://s.ytimg.com https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://chimpstatic.com https://connect.facebook.net https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://tagmanager.google.com https://chimpstatic.com https://connect.facebook.net; child-src https://vars.hotjar.com 'self' blob: ; connect-src 'self' https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com *.abtasty.com *.flagship.io https://api.segment.io https://*.mixpanel.com https://www.google-analytics.com https://awsapis3.netreviews.eu/ https://api.privacy-center.org/ ; font-src 'self' https://script.hotjar.com blob: data: *.googleapis.com *.gstatic.com *.abtasty.com https://fonts.gstatic.com https://use.typekit.net https://cl.avis-verifies.com/ ; frame-src 'self' https://vars.hotjar.com https://cl.avis-verifies.com https://www.youtube.com https://www.google.com ; img-src 'self' https://script.hotjar.com blob: data: *.abtasty.com *.amazonaws.com *.cloudfront.net https://www.googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://cl.avis-verifies.com https://sdk.privacy-center.org/ https://dev.visualwebsiteoptimizer.com https://*.facebook.com/tr/ https://stats.g.doubleclick.net https://www.google.de/ads/ https://*.gstatic.com https://dev.visualwebsiteoptimizer.com https://*.google.com https://*.facebook.com/tr/ https://ssl.google-analytics.com; style-src 'self' 'unsafe-inline' *.gstatic.com *.abtasty.com *.googleapis.com https://tagmanager.google.com https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net https://tagmanager.google.com; media-src 'self' ; object-src 'self' ; manifest-src 'self' ; frame-ancestors 'self' ; block-all-mixed-content;
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://secure.ogone.com
Strict-Transport-Security: max-age=3600; includeSubDomains
Expect-CT: enforce, max-age=86400
Location: ../en/index.html
Transfer-Encoding: chunked
Content-Type: text/html
HTTP/1.1 200 200
Date: Fri, 25 Sep 2020 16:01:04 GMT
Server: Apache
Content-Security-Policy: default-src 'none' ; base-uri 'none' ; form-action 'self' 'unsafe-inline' https://secure.ogone.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com blob: *.googleapis.com *.abtasty.com https://cdn.segment.com/analytics.js/ https://cdn.mxpnl.com/libs/ https://*.mixpanel.com https://www.googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com http://script.crazyegg.com/ https://use.typekit.net https://cl.avis-verifies.com/ https://sdk.privacy-center.org/ https://www.youtube.com https://s.ytimg.com https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://chimpstatic.com https://connect.facebook.net https://amplify.outbrain.com/ https://*.go-mpulse.net https://dev.visualwebsiteoptimizer.com https://tagmanager.google.com https://chimpstatic.com https://connect.facebook.net; child-src https://vars.hotjar.com 'self' blob: ; connect-src 'self' https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com *.abtasty.com *.flagship.io https://api.segment.io https://*.mixpanel.com https://www.google-analytics.com https://awsapis3.netreviews.eu/ https://api.privacy-center.org/ ; font-src 'self' https://script.hotjar.com blob: data: *.googleapis.com *.gstatic.com *.abtasty.com https://fonts.gstatic.com https://use.typekit.net https://cl.avis-verifies.com/ ; frame-src 'self' https://vars.hotjar.com https://cl.avis-verifies.com https://www.youtube.com https://www.google.com ; img-src 'self' https://script.hotjar.com blob: data: *.abtasty.com *.amazonaws.com *.cloudfront.net https://www.googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://cl.avis-verifies.com https://sdk.privacy-center.org/ https://dev.visualwebsiteoptimizer.com https://*.facebook.com/tr/ https://stats.g.doubleclick.net https://www.google.de/ads/ https://*.gstatic.com https://dev.visualwebsiteoptimizer.com https://*.google.com https://*.facebook.com/tr/ https://ssl.google-analytics.com; style-src 'self' 'unsafe-inline' *.gstatic.com *.abtasty.com *.googleapis.com https://tagmanager.google.com https://fonts.googleapis.com https://use.typekit.net https://p.typekit.net https://tagmanager.google.com; media-src 'self' ; object-src 'self' ; manifest-src 'self' ; frame-ancestors 'self' ; block-all-mixed-content;
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: https://secure.ogone.com
Strict-Transport-Security: max-age=3600; includeSubDomains
Expect-CT: enforce, max-age=86400
Set-Cookie: JSESSIONID=7335623DFAB08666E082B07F21F17816.app1; Path=/; Secure; HttpOnly
Expires: Fri, 25 Sep 2020 16:01:04 GMT
Pragma: no-cache
Cache-Control: no-cache, no-store
Last-Modified: Fri, 25 Sep 2020 16:01:04 GMT
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
|